Staff Profile Pages

A socio-technical perspective on threat intelligence informed digital forensic readiness

Authors: Serketzis, N., Katos, V., Ilioudis, C., Baltatzis, D. and Pangalos, G.J.

Pages: 173-184

ISBN: 9781799830252

DOI: 10.4018/978-1-7998-3025-2.ch014

Abstract:

In this article, a DFR framework is proposed focusing on the prioritization, triaging and selection of Indicators of Compromise (IoC) to be used when investigating of security incidents. A core component of the framework is the contextualization of the IoCs to the underlying organization, which can be achieved with the use of clustering and classification algorithms and a local IoC database.

Source: Scopus